Xiaomi Redmi 9 remains one of the most popular budget smartphones, but its owners often face risks when conducting mobile payments. Fraudsters exploit vulnerabilities in MIUI, forge payment pages and intercept SMS with confirmation codes. In this article, we will show you concrete steps to protect your finances, from basic settings to advanced methods of detecting attacks.
The problem is not the device itself, but a combination of factors: outdated firmware, careless attitude to application permissions, and the lack of two-factor authentication. For example, the FakeBank virus masquerading as legitimate banking applications stole data from more than 12,000 Xiaomi users in Russia in 2023, we will analyze how to disable vulnerable MIUI features that scammers use to steal money, and what tools will help track suspicious activity.
1. Checking the current security status: where to start
Before you make changes, evaluate the level of protection of your Redmi 9. Open Settings β About Phone β MIUI version and compare it with the latest updates on the official Xiaomi website. If the version is older than MIUI 14, your device is vulnerable to exploits closed in new patches.
Next, check the list of installed applications:
- π Unknown sources: go to Settings β Annexes β Application management β Special access β Install unknown applications and disable permission for all browsers and instant messengers.
- π± Suspicious programs: Delete apps with names like βQuick Payments,β βMobile Bankβ +", "SMS Helper β They often mask Trojans.
- π Play Market Updates: Open Google Play β Profile β Manage devices and make sure Redmi 9 is marked as "Certified."Device counterfeits block security updates.
β οΈ Note: If there is com.android.securepay or similar services on the list of applications that you have not installed, this is a sign of infection. Immediately reset to factory settings (instruction in section 4).
2.Set up MIUI to protect payments: hidden options
MIUI contains built-in security tools that are disabled by default. Activate them:
- Block payment SMS: Go to Settings β Passwords & Security β Block messages and add bank numbers (900, 911, etc.) to the blacklist. This will prevent interception of confirmation codes.
- Ban screenshots in banking applications: In Settings β Privacy β Privacy Protection, enable the option βDisallow Screenshotsβ for SberBank Online, Tinkoff and other financial services.
- Background activity restriction: C Settings β Battery and performance β Background management set for all applications except system, Strictly Restricted mode. This will block the spyware from working.
| Parameter MIUI | Recommended value | Why? |
|---|---|---|
| USB debugging | Disconnected. | Prevents remote device management via ADB |
| Installation from unknown sources | Disabled for all applications | Blocks the installation of malicious APKs |
| Show password when entering | Disconnected. | Protects against peeping behind your shoulder |
| Autofilling passwords | Only for trusted applications | Eliminates data leakage through phishing forms |
π‘
If your Redmi 9 suddenly starts to overheat when using banking applications, this is a sign of the miner or spyware. Check the active processes in Settings β Applications β Launched and forcibly stop suspicious ones.
3. Two-factor authentication: how to configure correctly
Normal. SMS-codes are unreliable β they are intercepted through vulnerabilities in the protocol SS7 Or SIM cards. Use hardware keys or specialized applications:
- π Google Authenticator: Install from Play Market and link to bank accounts. Codes are generated locally, without being transmitted over the network.
- π± MIUI Security App: Built-in Security (Shield icon) supports one-time password generation for Xiaomi account.
- π Physical tokens: Banks like Tinkoff or Alfa Bank issue USB-keys (like Rutoken) connect it through OTG-adapter.
For Google Authenticator:
1. Open a banking application (for example, SberBank Online).
2. Go to "Security Settings β Two-factor authentication".
3. Select "Authenticator App" and scan the QR-code through Google Authenticator.
4. Save backup codes in a secure location (e.g., in Cashback Service β Encrypted Notes).β οΈ Warning: Never save two-factor authentication backup codes in Notes MIUI Fraudsters access them through phishing links masquerading as notifications from the bank.
Disabled. SMS-code|Linked to Google Authenticator or similar|Offline backup codes retained|The tokenβs operation is checked through OTG-->
4. Reset to factory settings: when necessary
If you suspect a virus infection (for example, after installing pirated apps or connecting to public Wi-Fi), do a full reset. On Redmi 9, this is done as follows:
- Back up your important data through Settings β Additional β Backup and Reset β Local Backup (exclude banking apps!).
- Go to Settings β About Phone β Resetting β Erase all data.
- Enter the pattern lock or PIN, confirm the action.
- After the reboot, do not restore data from the cloud β install the antivirus and check the system first.
On Redmi 9 with firmware older than MIUI 12.5, the reset does not remove malware from the /system partition. In this case, you need to flash through Fastboot from the official Xiaomi website.
What to do if the virus remains after resetting?
5.Phishing Protection: How to Recognize Fake Payment Pages
Fraudsters create copies of the websites of banks and payment systems, replacing only 1-2 characters in the address (for example, sberbank-online.ru instead of sberbank.ru). On Redmi 9 this is especially dangerous because of automatic redirection in the Mi Browser browser.
Signs of a phishing site:
- π Address line: There is no lock icon π or the domain contains typos (tinkof.ru instead of tinkoff.ru).
- π Entry forms: Ask to enter PIN from the card, CVV password MI-Accounts (banks never require this!).
- β‘ Download speed: Fake pages often load slower due to hosting on cheap servers.
To block phishing on Redmi 9:
- Install a browser with phishing protection: Firefox Focus or Brave (they block known fraudulent sites).
- In Settings β Applications β Mi Browser, disable the option βOpen links by defaultβ.
- Add a block to the host file of known phishing domains (root rights are required).
π‘
Even if the site looks identical to the original, always check the security certificate (click on the website). π Fraudsters often use self-signed certificates or pass them off as βverifiedβ through fake certification authorities.
6.Transaction monitoring: how to track suspicious write-offs
Redmi 9 allows you to set up notifications for all payments, even if fraudsters try to hide them.
| Method | How to set up | What's tracking |
|---|---|---|
| SMS-warning | Connect the transaction information service in the bank (usually free of charge) | All write-offs, including minor ones (e.g. subscriptions) |
| Push notifications | Enable in the banking application: Settings β Notifications β Card transactions | Instant Alerts on Geolocation Transactions |
| Email reports | Set up a weekly discharge in the bankβs personal account | All transactions for the period, including hidden payments |
| Annex "My Bank" | Install your bankβs official software and activate Operation Control | Blocking suspicious transactions on geodata |
If you find an unauthorized write-off:
- Block the card immediately through a mobile bank or by the number on the back.
- Call the bank (use the number from the official website, not from SMS!).
- Write a fraud report β you have 24 hours to challenge the transaction.
- Check Redmi 9 for viruses with Malwarebytes or Dr.Web Light.
7. Additional measures: VPN, antivirus and hardware protection
For maximum safety:
- π‘οΈ VPN: Use ProtonVPN or Windscribe when connecting to public Wi-Fi. Set up automatic turn on VPN In Settings β Connections and sharing β VPN.
- π¦ Antivirus: Install Bitdefender Mobile Security (there is a free version) and run a deep scan. Pay special attention to the folder /storage/emulated/0/Download β Trojans often hide there.
- π OTG-Blocker: Buy it USB-capacitor (stands) ~300β½) Connect your phone to other peopleβs devices only through it β this will prevent data transfer.
β οΈ Warning: Don't use antivirus software from unknown developers (like Super Cleaner or Virus Cleaner) many of them collect user data themselves, check the rating and downloads in the Play Market - reliable antivirus programs have at least 10 million installations.
π‘
Create a separate user in MIUI for payments: Settings β System system β Multiplayer mode. In this profile, install only banking applications and disable access to the service. SMS/So viruses from the main profile can't intercept the data.